【嫌儲Linux部】(Android含め)Linuxカーネルに権限昇格可能な脆弱性さっさと該当するやつはアプデしろ CVE-2022-0847 [773295751]

[0001 番組の途中ですがアフィサイトへの転載は禁止です (ﾗｸｯﾍﾟﾍﾟ MM7f-otz/) 2022/03/10(木) 20:36:19.69 ID:gT7YEj/qM]

The Dirty Pipe Vulnerability
https://dirtypipe.cm4all.com/
Abstract

This is the story of CVE-2022-0847, a vulnerability in the Linux kernel since 5.8 which allows overwriting data in arbitrary read-only files. This leads to privilege escalation because unprivileged processes can inject code into root processes.